Suppress rule suricata

I set up suricata and while receiving traffic and collecting alerts I noticed that I had false positives and used suppress
How to use it like this:
I created a suppress.rule file and inside this file
suppress gen_id 1; sig_id 1000002; track by_src; IP
I put
And inside suricata.yml, I also put the suppress.rule path, but it still produces the warning that I didn’t want.

Hi, @arz_Future ! Welcome to our forum! :slight_smile:

I believe you’re supposed to use small IP and commas are to be used so,

suppress gen_id 1, sig_id 1000002, track by_src, ip

Please try this and see if the issue still persists.